Vulnerabilities > CVE-2018-6558 - Unspecified vulnerability in Google Fscrypt
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
SINGLE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
PARTIAL network
google
Summary
The pam_fscrypt module in fscrypt before 0.2.4 may incorrectly restore primary and supplementary group IDs to the values associated with the root user, which allows attackers to gain privileges via a successful login through certain applications that use Linux-PAM (aka pam).
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 5 |